Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
DCC
2008
IEEE
2008
IEEE
Semantic security for the McEliece cryptosystem without random oracles
In this paper, we formally prove that padding the plaintext with a random bit-string provides the semantic security against chosen plaintext attack (IND-CPA) for the McEliece (and its dual, the Niederreiter's) cryptosystems under the standard assumptions. Such padding has recently been used by Suzuki, Imai and Kobara in the context of RFID security. Our proof relies on the technical result by Katz and Shin from Eurocrypt '05 showing "pseudorandomness" implied by learning parity checks with noise (LPN) problem. We do not need the random oracles as opposed to the known conversions, while the recent ones provide stronger protection (as compared to our scheme) ? against adaptive chosen ciphertext attack (IND-CCA2). In order to show that the padded version of the cryptosystem remains practical, we provide the estimates for suitable key size together with corresponding work required for successful attack.
Real-time TrafficRelated Content
| Added | 25 Dec 2009 |
| Updated | 25 Dec 2009 |
| Type | Conference |
| Year | 2008 |
| Where | DCC |
| Authors | Ryo Nojima, Hideki Imai, Kazukuni Kobara, Kirill Morozov |
Comments (0)
Researcher Info
|
